CVE-2024-0907 in Form Builder Plugin정보

요약

\~에 의해 MITRE • 2024. 02. 29.

The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the restore_records() function in all versions up to, and including, 8.5.6. This makes it possible for authenticated attackers, with subscriber-level access and above, to restore records.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

출처

Might our Artificial Intelligence support you?

Check our Alexa App!